Patent · US Expired

Combining a browser cache and cookies to improve the security of token-based authentication protocols

US7240192B1 · kind B1 · utility

52Cited by

5References

37Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

Ismail Cem Paya · Gainesville, US
Trevin Chow · Redmond, US

Key dates

Filing date	Mar 12, 2003
Grant date	Jul 3, 2007
Priority date	—
Expiry date	Jul 15, 2025

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2463/102
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Combining a browser cache and cookies to improve the security of token-based authentication protocols. A client stores a first portion of an authentication token as information (e.g., a cookie) in a first memory area. The client stores a second portion of the authentication token as server-inaccessible information (e.g., cached web content) in a second memory area. A server obtains the first and second portions from the client to recreate the authentication token to authenticate the client.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.